Revision Date: September 2025
Compresso emphasizes End-User information security. This document, designated our "Information Security Notice", represents a fundamental element of our Usage Framework. It controls all functions concerning information gathering, administration, and transmission executed by Compresso ("Compresso", "we", "us" or "our") pertaining to End-Users ("End-User", "you" or "your") of our applications and add-ons ("Applications" and/or "Supplementary Features"), as determined in the Usage Framework.
This Information Security Notice also contains specifications required under the EU General Data Protection Regulation ("GDPR") and the California Consumer Privacy Act of 2018 ("CCPA"), where applicable.
We strongly urge that End-Users meticulously review this Information Security Notice before downloading, accessing, or engaging with our Applications.
Any capitalized language not determined in this document will possess the meanings assigned to them in the Usage Framework.
No legal obligation exists requiring you to transmit any Personal Details (as determined below) with us. Nevertheless, recognize that particular features we supply necessitate the administration of specific Personal Details, as detailed in this Information Security Notice. If this information remains absent, we may lack capability to supply some or all of our features.
Our Applications, and related features are intended for End-Users aged 16 or higher, or the minimum age required for consent pertaining to Personal Details administration. End-Users beneath this age are barred from accessing our features or transmitting any Personal Details with us.
Under applicable statutes, you may hold the entitlement to access, modify, eliminate, or constrain the administration of your Personal Details. For supplementary information on your entitlements, please refer to the "Information Subject Entitlements" portion beneath.
We transmit Personal Details with third entities in connection with supplying the Application to our End-Users or in other constrained situations as detailed in this Information Security Notice.
The subsequent section clarifies the varieties of Personal Details we gather, operate and administer, why we gather your Personal Details and the intentions for which we will employ it.
We may gather two varieties of information from you:
The primary variety is information that is non-identifiable and nameless ("Non-Personal Details"). We do not identify the person from whom this Non-Personal Details is gathered, nor can we reasonably link this information with any End-User. Non-Personal Details characteristically includes technical specifications, such as browser variety, equipment and operating platform. This information is considered Non-Personal Details when it is gathered in bulk or is not attached to any identifiers.
The secondary variety is information that can recognize a particular End-User, either straightforwardly or obliquely ("Personal Details").
In conformity with GDPR, we operate as the Information Administrator for the Personal Details we gather. Beneath we specify the Personal Details we gather and how and for which intentions we administer and employ your Personal Details:
When you engage with our Applications, we may gather your Internet Protocol (IP) address location. Additionally, we will assemble technical specifications transmitted from your equipment, including equipment variety, operating platform, statistical details, browser edition, language configurations, access timestamps, approximate position and the referring URL.
We pursue industry-standard methodologies to anonymize IP address after a definite interval following their gathering, guaranteeing they are stored in a fashion that does not categorize them as Personal Details.
The gathering of your IP address is vital for supplying the features related to the Applications. As such, we may employ this information to administer and secure our Applications. Additionally, we will utilize this information for legitimate intentions such as reviewing and observing installations, recognizing security vulnerabilities and fraudulent activities, and administering business functions (e.g., assessing collaborations).
If you communicate with us voluntarily via any accessible communication pathways (such as electronic mail), you will be required to supply your communication specifications, including your designation and electronic mail location. We also preserve records of our exchanges with you.
We will employ this communication specifications to respond to your questions, supply assistance, or accomplish any requested features. Where suitable, we may preserve a record of our communication for subsequent reference, such as for resolving claims, supplying assistance, and improving our features.
When you engage with our Applications, we may gather information related to search functions, including URLs of websites accessed. This information is employed to recognize security threats, prevent deception, and activate particular functionalities, such as exhibiting pertinent promotions based on End-User searches.
In conformity with the GDPR, the legal foundations for administering your Personal Details are as subsequent: (i) we administer particular Personal Details when you engage with the Applications, as we possess a legitimate benefit in doing so; and (ii) if you communicate with us, we will administer your Communication Specifications and any other information you supply to accomplish our contractual responsibilities with you.
Be cognizant that under the CCPA, the terminology Personal Details does not include: (i) information that is publicly accessible from governmental documents; and (ii) consumer information that has been de-identified or combined.
In conformity with the CCPA specifications, the subsequent table details the varieties of Personal Details we assemble from you:
| Variety | Instances | Gathered |
|---|---|---|
| A. Markers | Person's actual designation, substitute designation, postal location, distinct personal marker, online designation, Internet Protocol location, electronic mail location, account designation, Social Security identifier, driver's authorization identifier, passport identifier, or similar unique markers | Yes |
| B. Varieties of personal details determined in the California Customer Documents statute (Cal. Civ. Code § 1798.80(e)) | Personal details may include person's designation, authentication, Social Security identifier, physical traits or specification, residence location, telephone identifier, passport identifier, driver's authorization or state ID identifier, insurance document identifier, educational background, employment record, bank account specifications, credit card, and debit card details, as well as other financial details, health-related details, or health insurance specifications. Some personal details in this variety may intersect with other varieties | No |
| C. Traits of protected categorizations as determined by California state or federal statutes | Age (40 years and higher), ethnicity, complexion, ancestry, nation of origin, citizenship, faith or conviction, marital condition, health condition, physical or psychological limitations, gender (which includes gender recognition, gender manifestation, pregnancy, delivery, and related medical situations), sexual inclination, military connection, and genetic details (including family genetic details) | No |
| D. Transaction details | Documents of personal assets, products or features purchased, secured, or contemplated, or other purchasing or consuming records or patterns | No |
| E. Biometric Information | Genetic, physiological, behavioral, and biological characteristics, as well as activity configurations utilized to secure a pattern or any other form of recognizing details, including fingerprints, facial identification, voice identification, iris or retinal examinations, keystroke patterns, gait examination, or other physical traits, along with details related to sleep, health, or physical motion | No |
| F. Internet or other comparable network engagement | Browsing record, search record, and details on consumer's engagement with a website, application, or promotion | Yes |
| G. Geographic position details | Physical position or displacements | No |
| H. Perception details | Audio, electronic, optical, thermal, olfactory, or comparable details | No |
| I. Career or employment-related details | Present or previous occupation record or performance assessments | No |
| J. Non-public educational details (per the Family Educational Entitlements and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)) | Educational documents straightforwardly related to a student preserved by an educational establishment or entity functioning on its representation, such as marks, records, class rosters, student timetables, student recognition codes, student financial details, or student disciplinary documents | No |
| K. Conclusions drawn from other personal details | Profile demonstrates person's inclinations, traits, psychological patterns, dispositions, conduct, perspectives, cognition, capabilities, and competencies | No |
In conformity with CCPA stipulations, we supply the subsequent information pertaining to the revelation of Personal Details for business intentions:
Over the preceding twelve (12) months, the Organization has transmitted the subsequent varieties of Personal Details for business intentions: (A) Markers; and (F) Internet or other comparable network engagement.
We have transmitted your Personal Details with the subsequent varieties of third entities for business intentions: (i) Details consolidators; (ii) Feature suppliers; and (iii) Business collaborators.
Please recognize that any Personal Details revealed for business intentions is controlled by contractual arrangements with the third entities obtaining the information, guaranteeing that they exclusively employ the information to accomplish their responsibilities under those arrangements.
According to the CCPA requirements, beneath is information regarding the transaction of Personal Details:
In the previous twelve (12) months, the Organization did not transact Personal Details.
We do not transact, trade, or rent our End-Users' Personal Details to third entities. Nevertheless, we may transmit your information in particular, constrained situations as detailed beneath:
We may reveal your Personal Details when required to conform with applicable statutes, regulations, or internal guidelines and arrangements.
Your Personal Details may be transmitted to establish or secure our legal entitlements, respond to legal claims, or guarantee the security and entitlements of ourselves, our End-Users, you, or any third entities. This may include cooperation with law enforcement or enforcing our intellectual assets and legal entitlements.
In the situation of a corporate transaction, such as a substantial transaction of our business, consolidation, or asset procurement, your information may be transmitted with the participating entities. The entitlements and responsibilities described in this Information Security Notice will transfer to our affiliates or the procuring organization.
We may transmit your Personal Details with trusted collaborators and feature suppliers in order to supply the essential features.
Furthermore, we may transmit digital markers we gather to assist business functions, administer transactions, and recognize deception, security threats, or technical vulnerabilities related to our Applications.
Information security regulations vary by territory and supply various entitlements pertaining to your Personal Details.
If you are a resident of the European Economic Area (EEA) or California, the GDPR and CCPA, correspondingly, provide you the subsequent entitlements:
The entitlement to be notified: You possess the entitlement to be completely notified about how your Personal Details is gathered and employed. We supply this information in this Information Security Notice to guarantee transparency and equity in administering your Personal Details.
The entitlement to examine your Personal Details: You can petition verification of whether we are administering your Personal Details. In some situations, you can also petition a duplicate of the Personal Details we are administering.
The entitlement to rectify: You possess the entitlement to rectify inaccuracies in your Personal Details in the situation you discovered it erroneous, obsolete, etc., considering the character and intentions of each administration operation.
The entitlement to petition elimination of your Personal Details: You can petition that we eliminate particular Personal Details we administer if definite situations are satisfied. For instance, if the information is no longer required for its original intention, if you retract your consent (where applicable) or oppose administration, or if elimination is required by statute. Nevertheless, this entitlement is not unconditional, and we may decline your petition if we are legally required to preserve the information or require it to protect against legal claims.
The entitlement to oppose: You possess the entitlement to oppose the administration of your Personal Details when it is founded on our legitimate benefits. Nevertheless, we may persist administering the information if our legitimate benefits supersede your entitlements or if the administration is essential to establish, exercise, or protect legal claims.
The entitlement to constrain administration: You can petition that we constrain the administration of your Personal Details where particular situations are satisfied. For instances: (i) if the precision of the information is contested; (ii) if the administration is unlawful, but you favor constraint over elimination; (iii) if the information is no longer required for its original intention but is still required to establish, exercise, or protect legal claims; (iv) if there are superseding reasons that prevent elimination.
The entitlement to transferability: You can petition the transmission of your Personal Details to a third organization, supplied that the information was supplied by you, administered automatically, and founded on a contract or consent.
The entitlement to retract consent: Should you select to constrain the transmission of your Personal Details with third entities for the intention of cross-contextual interest-based promotion, you possess several alternatives to decline. Please be cognizant that unless you decline with other organizations and promotion networks as well, you may persist obtaining customized promotions founded on information they have gathered about you autonomously. To administer your inclinations and decline interest-based promotion on desktop and mobile browsers, please access the subsequent sites: Digital Advertising Alliance (US); Digital Advertising Alliance (Canada); Digital Advertising Alliance (EU); Network Advertising Initiative.
The entitlement to challenge or submit a grievance: If we decline to execute action on your petition, we will notify you without unnecessary delay as required under applicable statutes. The notification will include a rationale for declining to execute action and directions on how you may challenge, if applicable. Within the timeframe established under applicable statute as of our reception of your challenge, we will notify you in writing of any action executed or not executed in response to your challenge, including a written clarification of the reasons for the determinations. If the challenge is rejected, you may present a grievance to the applicable authority. Where the GDPR applies, you possess the entitlement to submit a grievance with the applicable Information Security Authority in the EU or the Information Commissioner in the UK.
If you desire to exercise any of the aforementioned entitlements, please communicate with us at: [email protected]
If we are incapable to accomplish your petition for information or to exercise your entitlements, we will execute an effort to clarify why. We may petition reasonable verification of recognition before supplying such information, in accordance with applicable statutes.
This Information Security Notice does not encompass third entity features, suppliers, or the substance of third entity websites. Third entity information security methodologies and guidelines may vary from ours, and we possess no governance over them. As such, we are not accountable for any information security methodologies of third entities. We powerfully encourage you to review the information security guideline of any third entity you engage with.
Our Applications are not constructed for or directed towards children, especially those beneath the age of 16 (or the minimum age required by applicable statute). We do not deliberately gather or pursue information from children. If we become cognizant that we are administering a child's Personal Details, we will expeditiously execute steps to eliminate that information.
Your information security is our precedence, and we are dedicated to securing your Personal Details from unauthorized access, employment, or revelation. We have executed physical, technical, and administrative security mechanisms that conform with applicable statutes and industry benchmarks.
We also execute steps to reduce the quantity of Personal Details preserved on our servers. In the situation of an information violation, if we believe your Personal Details may have been jeopardized, we will execute reasonable efforts to notify you and any pertinent authorities, as required by statute.
We preserve the information we gather exclusively for as extended as essential to supply the Applications, accomplish our business intentions, and conform with legal requirements. This includes resolving controversies and enforcing our arrangements, in conformity with applicable statutes, or until you petition the elimination of your Personal Details, as described above.
We may administer or preserve Personal Details within the European Economic Area ("EEA"), the United States, and other international positions. We will execute suitable mechanisms to guarantee that your Personal Details is secured in conformity with applicable information security statutes.
This Information Security Notice may be revised intermittently, as essential, and in conformity with applicable statutes. We suggest examining this Information Security Notice periodically to remain notified about any modifications. The latest edition will be specified in the "Revision Date" portion at the commencement. If any substantial modifications occur, we will execute reasonable efforts to notify you, pursuing the requirements established by applicable statutes.
If you possess any questions pertaining to this Information Security Notice, please communicate with us at: [email protected]